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CLAIMS 



I claim: 




1. 



A secure on-line printing method, comprising the steps or. 



establishing a communication link between a /first 
computer and a second computer; / 

executing a print software on said firs/ computer; 

said print software initiating a continuous 
communication link between spd first computer and said 
second computer using a dyr4mic password; 

verifying said dynamic password for terminating said 
printing software when said communication link is not 
continuous; / 

said print software sending a request for a print 
authorization to said second computer; 

said secpnd computer sending a permission and 
information to said first computer in response to said 
request, while said communication link is continuous. 
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The method of claim 1 wherein said permission and 
information are used for printing apHmage while said 
communication link is contirprous. 

The method of clainy2 wherein said step of said print software 
sending a requegf includes encrypting said request. 
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The metiixod of claim 3 wherein said step of said second 
comfniter sending a permission and information includes 
icrypting said permission. 



The method of clai: 



computer sending 
encrypting said infc 





said step of said second 
permission and information includes 
mation. 



The method of claim 5 wherein said ii 
image of a postal indicia. 



ion comprise an 




The meth(5d of claim 6 wherein said request for said print 
fthorization includes a postage amount. 



8. The method of cla 
generation is 
said postage^mouiVt 
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said dynamic password 
delivery destination information and 
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The method of claim 8 
generation is furt 




said dynamic password 
upon a time on said first computer. 



10. The method of claim 9 whereirrgaid step of said printing 
software sending^fequest for a print authorization is in 
response"ro a command from a user. 



11. The method of claw; rv^&wherein said dynamic password 




generation is furmer\b ase d upon a user information. 



12. The method of claim 11 wherein said second coijr^uter 
comprises a database containing user infcjitfftation. 

13. The method of claim 12 whereiff said user information 
comprises financial infojafiation of a user. 



14. The methocj/tff claim 13 wherein said step of second computer 
sending a permission to said first computer in response to said 
^uest further comprises the steps of: 



said second computer accessing said user information to 
verify a fund availability to cover said postage amount. 



15. The method of 
initiating a cont 




herein the step of said print software 
communication link comprises: 
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initiating an asynchronous header for ensuring saic 
communication link between said first computer and said 
second computer is continuous. 



16. The method of claim 15 wher 
dynamic password comprises: 

using said asynchrono 
printing software 



5wi the step/m initiating said 



he^dW for terminating said 



17. The method of claim 16 wherein said second computer has a 
controller code on said print software, said controller code 
providing inputs to said asynchronous header code. 

18. The method of claim 17 wherein said step of printing^n indicia 
comprises the step of: 

disabling a print spopter of said printer. 



19. The method of^aaim 18 further comprising the step of said print 
softwarp^ending a print cancel command to said printer when 
sakl communication link disconnects. 
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20. The method of claim 5 whereip^id information comprise 
image of a ticket. 



21. The metimd of claim 20 wherein said request for said print 
authorization includes a ticket price. 

22. The method of clairnSgOv^rein said dynamic password is 
generated based uf^on raid ticket price. 



23. The method of claim 22 wherein said step of second cojrfputer 
sending a permission to said first computer in response to said 
request further comprises the steps of: 



said second computer acceding a user's financial 
information to verify pmds availability to cover said 
ticket price. 

24. The method of qlcium 5 wherein said information comprise 
image of a ch^ck. 



25. The method of claim 24 wherein said request for said print 
authorization includes a check amount. 



26. / The method of cl 
generated base 




wherein said dynamic password is 
aid check amount. 
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27. The method of claim 26 wherein said step of second computer 
sending a permission to said first computer in respor^e to said 
request further comprises the steps of: 

said second computer accessing a user's financial 
information to verify funds ava#ability to cover said 
check amount; 

sending a permission/to said first computer. 

28. The method of clainj/o wherein said information comprises 
image of a coupor 

29. The methodyof claim 28 wherein said request for said print 
authorization includes a coupon amount. 

30. The method of ckrfn^^T wherein said dynamic password is 
generation bap^SNApon said coupon amount. 

31. The method of claim 1 wherein^m information comprises 
image of a certificate. 

32. A secur^<5n-line postage metering method comprising the steps 
ofc 



04500.913 



110 



Express Mail #EL111266894US 



a user computer establishing a communication link with 
a vendor computer; / 

providing a printer connected to said user computer; 

executing an on-line postage metering software on said 
user computer; ^ / 

said on-line postage metering software initiating an 
asynchronous header for ensuring saira communication 
link between said first computer ana said second 
computer is continuous using a dynamic password; 

verifying said dynamic password using said asynchronous 
header for terminating said <p-line postage metering 
software when said commiinication link is not 
continuous; / 

said on-line postage raftering software sending a request 
for a print authorization for a postage amount to said 
vendor computer/ 

said vendor computer accessing a database to verify a fund 
availability to cover said postage amount; 
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said vendor computer sending a permission and image 
information to said first computer in responseyco said 
request; 

said on-line postage metering software sending said image 
information to said printer whil^/said communication 
link is continuous. 

The method of claim 32 wherein said step of said on-line postage 
metering software sending p request includes encrypting said 
request. 



The method of cl^fin 33 wherein said step of said vendor 
computer sendfhg a permission and image information includes 
encrypting tfaid permission. 




The method of 
computer send 
encryptinj 



said step of said vendor 
fission and image information includes 
;e information. 



The method of claim 35 fyrth^fTncluding the step of: 

said on-line^postage metering software disabling a print 
spopfer of said printer. 
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37. The method of claim 3p wherein said dyn^mi€password 

generation is based i ponj^eliv^jy^stination information and 
said postage amount 



38. The methojkm claim ^37 wherein said dynamic password 

generation is further based upon a time on said user computer. 





39. The method of claim 38 whereip^eatcTstep of said on-line postage 
metering software^sericTing a request for a print authorization is 
in respons^fo a command from a user. 



40. The method of clai: 
generation is 




erein said dynamic password 
sed upon a user information. 
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41. The method of claim 40 further comprising the step ofsaid on- 
line postage metering software sending a print^ncel command 
to said printer when said communication,Hnk is interrupted. 

42. A secure on-line postage man^graaent method comprising the 
steps of: 



establishing continuous and secure communication 
between a client system and a server system; 
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said client system processing a user request for 
an indicia; 



genei 



said client system securely communicating said user 
request to said server system; 

said server system processing said use/ request; 
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said server system securely communicating to said client 
system a response to said user request ; 

said client system processing said response to generate an 
indicia; 

said client system generating an indicia while 
communication between said server system and said 
client system reimins secure and continuous. 



20 



43. The method of clainy42 wherein said step of client system and 
server system securely communicating with one another 
comprises the steps of: 



registe/ing a user by establishing a secured 
communication link between said client system and said 
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server system and verifying the authenticity of 
information exchanged; 

continuously monitoring said established communication 
link by verifying the authenticity op the information 
exchanged. 
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44. The method of claim 43 wherein said /step of registering a user 
comprises the steps of: 

said client system selecting a password; 

securely sending said password to said server system; 



* 15 



said client system issuing a challenge to said server 
system; 
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said server system modifying said challenge 
cryptographicany; 

said client system verifying said modified challenge for 
proper authentication of the communication. 
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45. The method of claim 44 wherein said step of securely sending 
said password comprises the steps of sending said password to 
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said server using triple Data Encryption Standard (DES)^f the 
SSL Internet protocol, thereby establishing an SSL triple DES 
communication session between said client system /nd said 
server system. / 

The method of claim 45 wherein said step o^said client system 
issuing a challenge comprises the step of issuing a 64 bit random 
number to server system. / 

The method of claim 46 wherein saicystep of said server 
modifying said challenge comprise^the step of server system 
digitally signing said challenge using a cryptographic device and 
a private key associated with said server system. 

The method of claim 47 wherein said step of said client system 
verifying said modified challenge comprises the step of using a 
public key corresponding/to said private key associated with said 
server system to verify /aid digital signature of said challenge. 

The method of claim 43 wherein said step of continuously 
monitoring said communication link comprises the steps of: 

said servp system retrieving a password associated with 
said client system; 
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generating a message authentication code using said 
password associated with said client system; 

sending said message authentication coder and a challenge 
to said client system; 

said client system verifying said authentication code using 
said challenge and said passwora associated with said 
client system. 

The method of claim 49 wherein said step of retrieving a 
password further comprises: 

retrieving said password from a database; 
decrypting said password if it is encrypted. 

The method of claim 50 wh^rfn said message authentication 
code is generateci^iSing a password associated with said client 
syster 



The method of claim 42 whefein said continuous and secure 
communication between client system and server system is 
establishesKhrough a fire wall. 
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The method of claim 42 wherein said continuous and secure 
communication between clienft system and server system is 
established via the Internetysecure sockets layer (SSL) protocol. 

The method of claim 42 wheseiffthe step of said server system 
processing said u£ef*request takes place in a public network and a 
private nejWork included within said server system. 

The method of claim 54 whereirySaid public network processes 
user requests independently from said private network to protect 
the integrity of said server sretem. 

The method of claim AZ wherein communication between client 
system and server system is encrypted. 

The method of claim 56 wherein communication between client 
system and server system is encrypted by a JUfuted States Postal 
Service compliant cryptographic dj 



The method of claip*<?£2 further comprising the step of disabling 
said client system from generating said indicia if said secure and 
contin>*ds communication between client system and server 
is discontinued. 
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59. The method of claim 54 wherein private network processes user 
requests for making payments. 

60. The method of claim 59 wherein the step of privajfe network 
processing user request for making payments finther comprises 
the step of communicating with a financial npfanagement system 
for verification of availability of funds and Aind transfer. 
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61. The method of claim 42 further comprising the step of said 
server system communicating with fne United States Postal 
Service Central Meter Licensing System (USPS CMLS) for 
processing of user licensing information. 
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62. The method of claim 61 furper comprising the step of 
registering a user. 



63. An on-line postage system for processing of user requests and 
generating postage mdicia comprising: 
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a client system for interfacing with a user, 



a server system in continuous and secure communication 
with/said client system, comprising: 



04500.913 



119 



Express Mail #EL111266894US 



# 



10 

m 
y 

y 

pi 

a 

tfi 15 

y 

03 



20 



a communication server for communicating wi{ 
client system; 

a database server for storing user information; 

a transaction server for processing of requests 
communicated to server systeij* by said client 
system; 

a firewall for ensuring t>(e integrity of said server 
system against potential unauthorized access; 

a cryptographic d^ice for encrypting 
communicationyDetween client system and server 
system; 

a communication link with the United States Postal 
Service Central Meter Licensing System (USPS 
CMLSyfor licensing of a user; 

a communication link with a financial 

\agement system for processing user payments. 
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64. The on-line postage system of claim 63 comprising a system 

software nown-loadable from a server system to a client system. 
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The on-line postage system of claim 63 wherein said 
accessible through an Internet portal 

The on-line postage system of claim^Q wherein said client 
system interfaces with one or more users. 



The on-line postage system of claim 63 wherein said client 
system comprises administration software to monitor one or 
more clienj/sy stems. 



121 



Express Mail #EL111266894US 



